Back

CYBERSECURITY STANDARDS

Legal Compliance (FERPA and COPPA)

The School shall comply with all applicable federal and state data privacy laws, including FERPA and COPPA.

  • Student educational records shall be protected and shared only with authorized individuals.
  • Parental consent shall be obtained for digital tools involving minors.
  • Annual FERPA notifications shall be provided.
  • All data-sharing agreements shall undergo legal review.

Cybersecurity Risk Management

The School shall maintain a Cybersecurity Risk Management Plan that includes:

  • Annual vulnerability assessments
  • Ongoing staff cybersecurity training
  • Incident response procedures
  • Mandatory reporting of suspicious activity

Data Breach Response

In the event of a data breach, the School shall:

  • Contain the breach
  • Investigate scope and impact
  • Notify affected individuals
  • Report to applicable authorities
  • Remediate identified vulnerabilities

All breach responses shall comply with state and federal notification requirements.

Download: CYBERSECURITY STANDARDS